|
345841
|
- |
|
php
|
php
|
The (1) trim, (2) ltrim, (3) rtrim, and (4) substr_replace functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information (memory contents…
|
CWE-200
Information Exposure
|
CVE-2010-2190
|
2017-08-17 10:32 |
2010-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345842
|
- |
|
php
|
php
|
The (1) parse_str, (2) preg_match, (3) unpack, and (4) pack functions; the (5) ZEND_FETCH_RW, (6) ZEND_CONCAT, and (7) ZEND_ASSIGN_CONCAT opcodes; and the (8) ArrayObject::uasort method in PHP 5.2 th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2191
|
2017-08-17 10:32 |
2010-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345843
|
- |
|
rpm
|
rpm
|
rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ;~ (semicolon tilde)…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2197
|
2017-08-17 10:32 |
2010-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345844
|
- |
|
rpm
|
rpm
|
lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade or deletion of the file in an RPM package remova…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2199
|
2017-08-17 10:32 |
2010-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345845
|
- |
|
gambitdesign
|
bandwidth_meter
|
Multiple cross-site scripting (XSS) vulnerabilities in Gambit Design Bandwidth Meter, 0.72 and possibly 1.2, allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) vie…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2260
|
2017-08-17 10:32 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345846
|
- |
|
galileo_students
|
team_weborf
|
Galileo Students Team Weborf before 0.12.1 allows remote attackers to cause a denial of service (crash) via a crafted Range header.
|
CWE-20
Improper Input Validation
|
CVE-2010-2262
|
2017-08-17 10:32 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345847
|
- |
|
uzbl
|
uzbl
|
The eval_js function in uzbl-core.c in Uzbl before 2010.01.05 exposes the run method of the Uzbl object, which allows remote attackers to execute arbitrary commands via JavaScript code.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0011
|
2017-08-17 10:31 |
2010-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345848
|
- |
|
cisco
|
ios_xr
|
Unspecified vulnerability in the sshd_child_handler process in the SSH server in Cisco IOS XR 3.4.1 through 3.7.0 allows remote attackers to cause a denial of service (process crash and memory consum…
|
NVD-CWE-noinfo
|
CVE-2010-0137
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345849
|
- |
|
cisco
|
ciscoworks_internetwork_performance_monitor
|
Buffer overflow in Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 and earlier on Windows, as distributed in CiscoWorks LAN Management Solution (LMS), allows remote attackers to execute a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0138
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345850
|
- |
|
cisco
|
security_agent
|
Directory traversal vulnerability in the Management Center for Cisco Security Agents 6.0 allows remote authenticated users to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2010-0146
|
2017-08-17 10:31 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
